From: Marvin Greenlee (marvingreenlee@yahoo.com)
Date: Tue May 23 2006 - 03:13:17 ART
Sure you can.
***
S1 --- VLAN 103 --- S3 --- VLAN 203 --- S2
S4 - device on VLAN 103 with default route pointing to
S1's interface address.
Cat1 - SVI configured on VLAN 203 with route for VLAN
103 network pointing to S2's Ethernet interface.
Loopback interfaces configured on S1 and S2. OSPF
running on S1, S2, and S3 to eliminate need for static
routes.
Tunnel from S1 to S2 with loopback interfaces as
endpoints, tunnel traffic is encrypted.
Traffic inbound on S1 Eth with dest of VLAN 203 is
policy routed to tunnel interface.
Traffic inbound on S2 Eth with dest of VLAN 103 is
policy routed to tunnel interface.
Ping from Cat1 to S4 will be encrypted. Verify on S2
with 'debug ip packet 105 detail'.
***
Configs to follow...
Not the prettiest, but it works.
>
> -----Original Message-----
> From: nobody@groupstudy.com
> [mailto:nobody@groupstudy.com] On Behalf Of
> Agayev, Teymur
> Sent: Wednesday, May 17, 2006 1:41 PM
> To: ccielab@groupstudy.com
> Subject: VPN on a Stick
>
> Group,
>
> Does anybody know if it possible to configure
> LAN-to-LAN VPN on a Stick
> (a single external interface is used to both receive
> traffic and to
> distribute it after encryption) on Cisco routers and
> if yes - how?
>
> Thanks,
> Teymur
>
>
This archive was generated by hypermail 2.1.4 : Thu Jun 01 2006 - 06:33:22 ART